b'CONGRESSIONAL RESPONSE\n       REPORT\n\n    Monitoring the Use of\nEmployee Verification Programs\n\n         A-03-06-36122\n\n\n\n\n         September 2006\n\x0c                                      Mission\nBy conducting independent and objective audits, evaluations and investigations,\nwe inspire public confidence in the integrity and security of SSA\xe2\x80\x99s programs and\noperations and protect them against fraud, waste and abuse. We provide timely,\nuseful and reliable information and advice to Administration officials, Congress\nand the public.\n\n                                   Authority\nThe Inspector General Act created independent audit and investigative units,\ncalled the Office of Inspector General (OIG). The mission of the OIG, as spelled\nout in the Act, is to:\n\n  \xc2\x81 Conduct and supervise independent and objective audits and\n    investigations relating to agency programs and operations.\n  \xc2\x81 Promote economy, effectiveness, and efficiency within the agency.\n  \xc2\x81 Prevent and detect fraud, waste, and abuse in agency programs and\n    operations.\n  \xc2\x81 Review and make recommendations regarding existing and proposed\n    legislation and regulations relating to agency programs and operations.\n  \xc2\x81 Keep the agency head and the Congress fully and currently informed of\n    problems in agency programs and operations.\n\n  To ensure objectivity, the IG Act empowers the IG with:\n\n  \xc2\x81 Independence to determine what reviews to perform.\n  \xc2\x81 Access to all information necessary for the reviews.\n  \xc2\x81 Authority to publish findings and recommendations based on the reviews.\n\n                                     Vision\nWe strive for continual improvement in SSA\xe2\x80\x99s programs, operations and\nmanagement by proactively seeking new ways to prevent and deter fraud, waste\nand abuse. We commit to integrity and excellence by supporting an environment\nthat provides a valuable public service while encouraging employee development\nand retention and fostering diversity and innovation.\n\x0c                            SOCIAL SECURITY\n                                  September 26, 2006\n\n\n\nThe Honorable Jim McCrery\nChairman, Subcommittee on Social Security\nCommittee on Ways and Means\nHouse of Representatives\nWashington, D.C. 20515\n\nDear Mr. McCrery:\n\nI am pleased to provide you with the enclosed report addressing your April 7, 2006 letter\nrequesting information related to the employee verification programs administered by\nthe Social Security Administration (SSA) and the Department of Homeland Security\n(DHS). This report contains information related to (1) controls over the employee\nverification programs to monitor potential abuse by employers and (2) each Agency\xe2\x80\x99s\nexperience to date with this monitoring.\n\nThank you for bringing your concerns to my attention. My office is committed to\ncombating fraud, waste, and abuse in SSA\xe2\x80\x99s operations and programs. To ensure SSA\nand DHS are aware of the information provided to your office, we are forwarding copies\nof this report to both Agencies.\n\nIf you have any questions or would like to be briefed on this issue, please call me or\nhave your staff contact H. Douglas Cunningham, Assistant Inspector General for\nCongressional and Intra-Governmental Liaison, at (202) 358-6319.\n\n                                                Sincerely,\n\n\n\n\n                                                S\n                                                Patrick P. O\xe2\x80\x99Carroll, Jr.\n                                                Inspector General\n\nEnclosure\n\ncc:\nJo Anne B. Barnhart\n\x0c                                                                           Background\nOBJECTIVE\nOur objective was to assess (1) controls over the Social Security Administration (SSA)\nand Department of Homeland Security (DHS) employee verification programs to monitor\npotential abuse by employers and (2) each Agency\xe2\x80\x99s experience to date with this\nmonitoring.\n\nBACKGROUND\nSSA posts wages reported on Wage and Tax Statements (Form W-2) to individuals\xe2\x80\x99\nearnings records in SSA\'s Master Earnings File (MEF)1 only when employers and\nthird-party submitters2 report employee wages under the correct names and Social\nSecurity numbers (SSN).3 The Agency has implemented several verification programs\nthat allow employers and third-party submitters to match the names and SSNs of\nexisting and newly-hired employees with SSA\xe2\x80\x99s records to detect mismatches and other\nanomalies. 4 Further, SSA participates with DHS in a verification program that validates\nemployees\xe2\x80\x99 work-authorization. The two on-line verification programs offered to\nemployers include the Social Security Number Verification Service (SSNVS) and the\nBasic Pilot.5\n\n\xc2\x83     SSNVS is an on-line program that allows employers to validate the names and\n      SSNs of employees.6 The purpose of SSNVS is to ensure employees\xe2\x80\x99 names and\n      SSNs match SSA records prior to the submission of their W-2s to SSA. Employers\n      can either verify up to 10 names and SSNs (per screen) on-line and receive\n      immediate results or upload batch files of up to 250,000 names and SSNs and\n\n1\n The MEF contains all earnings data reported by employers and self-employed individuals. The data is\nused to determine eligibility for and the amount of Social Security benefits.\n2\n A third-party submitter is a company or individual that submits or requests information on behalf of\nsomeone else.\n3\n The Social Security Act \xc2\xa7 205(c)(2)(A), 42 U.S.C. \xc2\xa7 405(c)(2)(A) requires SSA to maintain records of\nwage amounts employers pay to individuals.\n4\n    For example, SSNVS will indicate when SSA\xe2\x80\x99s records show a date of death.\n5\n While our focus in this report is on-line verification programs, SSA also offers other forms of employee\nverification. For instance, employers can register for the Agency\xe2\x80\x99s Employee Verification Service for\nRegistered Users, which allows employers to submit employee names/SSNs via paper or magnetic\nmedia. SSA also allows employers to verify up to 5 names/SSNs via a toll-free number, or submit a\npaper listing to the local Social Security office to verify up to 50 names/SSNs.\n6\n  SSNVS is one of the services offered by SSA\xe2\x80\x99s Business Service Online (BSO). BSO is a suite of\nInternet services for businesses and employers to exchange information with SSA. For further\ninformation, see the BSO homepage at www.socialsecurity.gov/bso/bsowelcome.htm.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                        1\n\x0c    usually receive results the next Government business day. In 2005, SSNVS\n    processed over 25.7 million verifications for about 12,000 employers. See Appendix\n    C for more information on SSNVS.\n\n\xc2\x83   The Basic Pilot is an ongoing joint initiative between SSA and DHS. The purpose of\n    the Basic Pilot is to assist employers in verifying the employment eligibility of\n    newly-hired employees. Participating employers register on-line with DHS to use the\n    automated system. The information the employer submits to DHS is sent to SSA to\n    verify that the SSN, name, and date of birth (DoB) match SSA\xe2\x80\x99s records. SSA also\n    confirms US citizenship, thereby confirming work authorization. DHS confirms the\n    current work-authorization for non-citizens. In 2005, the Basic Pilot processed about\n    980,000 verifications for approximately 3,700 employers. See Appendix D for more\n    information on the Basic Pilot.\n\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                    2\n\x0c                                                          Results of Review\nOur review found that SSA has established effective controls over access and use of\nsensitive data in its SSNVS program. We found SSNVS had controls over the\napplication process to verify (1) the applicant\xe2\x80\x99s personal information, (2) the company\xe2\x80\x99s\nEmployer Identification Number (EIN),7 (3) the applicant\xe2\x80\x99s authorization to use the\nservice on behalf of the company, and (4) the applicant\xe2\x80\x99s employment with the\ncompany. SSNVS also had controls to detect anomalies in SSNVS usage and potential\nmisuse of the program. For example, SSA\xe2\x80\x99s monitoring resulted in four investigations of\nmisuse of the program as well as the deactivation of one user\xe2\x80\x99s access to the program.\nThe Basic Pilot did not have the same level of controls, in part because (1) the\napplication process did not request some of the identifiers used by SSNVS to monitor\nthe applicants, and/or (2) the information provided by the applicant during the\nregistration process was not validated.\n\nACCESS CONTROLS\nWe found the SSNVS program had a number of mechanisms in place to identify and\nauthenticate applicants, as shown in Table 1. Effective access controls can protect data\nand systems from misuse. The Basic Pilot program did not have similar access\ncontrols.\n\n                      Table 1: Controls over the Application Process\n                                                                        Control Established?\n                    Description of Controls                             SSNVS       Basic Pilot\n    Verifying applicant\xe2\x80\x99s name and SSN                                    Yes              No\n    Validating the company\xe2\x80\x99s EIN                                          Yes              No\n    Separately issuing program activation code to the\n                                                                          Yes              No\n    company\n    Verifying applicant\xe2\x80\x99s employment under the company\xe2\x80\x99s\n                                                                          Yes              No\n    EIN in SSA\xe2\x80\x99s earnings records\n\nSSNVS CONTROLS OVER THE APPLICATION PROCESS\n\nWe found the SSNVS program had controls to (1) verify the applicant\xe2\x80\x99s identity,\n(2) validate the company\xe2\x80\x99s EIN, (3) confirm that the employee is an authorized user for\nthe company, and (4) verify the actual employment of the applicant under the\ncompany\xe2\x80\x99s EIN. The following controls were established as part of the SSNVS\nregistration process:\n\n\n\n\n7\n The EIN is a 9-digit number assigned by the Internal Revenue Service (IRS) to sole proprietors,\ncorporations, partnerships, estates, trusts, and other entities for tax reporting purposes.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                               3\n\x0c\xc2\x83    Applicant\xe2\x80\x99s Personal Information \xe2\x80\x93 SSA authenticates the applicant by verifying his\n     or her name, SSN,8 and DoB against SSA\xe2\x80\x99s Numident.9\n\n\xc2\x83    Company\xe2\x80\x99s EIN \xe2\x80\x93 SSA verifies the submitted company\xe2\x80\x99s EIN against the Employer\n     Identification File (EIF)10 to confirm that the EIN is valid.\n\n\xc2\x83    Separate Issuance of the Program Activation Code to the Company \xe2\x80\x93 SSA mails the\n     activation code11 directly to the company\xe2\x80\x99s address shown in the EIF instead of the\n     address provided by the applicant during the registration process.12 This control\n     allows a company to confirm an employee\xe2\x80\x99s authorization to use the program on its\n     behalf.\n\n\xc2\x83    Applicant\xe2\x80\x99s Employment with the Company \xe2\x80\x93 SSA verifies the applicant\xe2\x80\x99s\n     employment with the company via the MEF. To do this, the Agency searches the\n     MEF to determine whether wages were posted under the reported EIN for each\n     applicant\xe2\x80\x99s SSN.\n\nDuring the registration process, if the information above could not be validated at any\nstep in the process, SSA advised the applicants to contact the Agency\xe2\x80\x99s Employer\nCustomer Service to resolve the potential discrepancy.13 For example, if SSA could not\nverify the EIN provided, SSA would send an automated alert to the applicant stating:\n                            We Cannot Match the Information that you Provided\n\n     We are sorry for the inconvenience, but we cannot match the information you have\n     provided with our records. Please review the information you have sent us, make any\n     corrections necessary, and resubmit your request. If you were hired by the company you\n     are registering for in the last 6-8 months, it is possible that SSA\xe2\x80\x99s records do not reflect your\n     employment with the company for whom you are trying to register. If the information that\n\n8\n If an applicant is not a United States citizen and he or she lives outside the country, the SSNVS\nregistration process will allow an applicant to leave the SSN field blank. However, additional\nauthentication will be required before access is granted.\n9\n  The Numident is a record of identifying information (such as name, DoB, date of death, mother\xe2\x80\x99s maiden\nname, etc.) provided by the applicant on his or her Application for a Social Security Number (Form SS-5)\nfor an original SSN and subsequent applications for replacement SSN cards. Each record is housed in\nthe Numident Master File in SSN order.\n10\n  The EIF is an IRS file which contains the EIN of a business and the employer name and address\nassociated with each EIN.\n11\n  The activation code is an alphanumeric code sent by SSA to the employer or registered Personal\nIdentification Number (PIN) holder (if self-employed) when access to certain services is requested. This\ncode must be entered on the Activate Access to BSO Service web page to enable the user to access the\nrequested service.\n12\n  The applicant is also assigned a PIN during the registration process and he or she must create his or\nher own password. The PIN is a unique value issued by SSA to each applicant, which must be entered to\ngain access to SSNVS.\n13\n  The Agency\xe2\x80\x99s Employer Customer Service is a toll-free line to help employers with wage reporting\nquestions or problems.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                     4\n\x0c     you provided is correct, then it may be necessary to correct our records. Please call\n     1-800-772-6270 Monday through Friday, 7:00 a.m. to 7:00 p.m. Eastern Time to speak with\n     Employer Customer Service personnel. For TDD/TTY call 1-800-325-0778.\n\nBASIC PILOT CONTROLS OVER THE APPLICATION PROCESS\n\nThrough discussions with DHS and SSA staff, as well as our own use of the Basic Pilot\nprogram, we found that the controls over the application process for the program were\nnot as comprehensive as those over SSNVS. Specifically, we found (1) the application\nprocess did not request some of the identifiers used by SSNVS to monitor the\napplicants and (2) the program did not verify applicant and company information\nobtained during the registration process.\n\nWhen registering for the Basic Pilot program, an applicant must complete and sign a\nMemorandum of Understanding (MOU),14 which requests such information as the\napplicant and company name, company address, and EIN.15 However, applicants were\nnot required to provide other relevant data needed to authenticate the applicant\xe2\x80\x99s\nidentity, such as the applicant\xe2\x80\x99s SSN and DoB. Without this information, the Basic Pilot\nprogram was unable to verify key information associated with the applicant against\nother Government records (i.e. SSA\xe2\x80\x99s Numident). We discussed this with DHS staff and\nthey noted that even if their Agency collected the applicant\xe2\x80\x99s SSN and DoB, they may\nnot have the authority to verify the relevant data through the Basic Pilot since the\napplicant is unlikely to be a newly-hired employee. New employees are the only\ncategory of employees currently permitted to be verified under the program.\n\nWe also found the Basic Pilot was not validating the information provided by the\napplicant during the registration process. For instance, although the applicant provided\nthe company\xe2\x80\x99s EIN, this number was not verified to ensure it was a validly issued EIN.\nAccording to DHS staff, the Agency did not have access to the IRS list of assigned\nEINs, which could have been used to determine the validity of the EIN.16 Moreover, the\nBasic Pilot did not have a process in place to confirm whether the applicants had\nauthorization to use the service on behalf of their employers, but instead provided\nimmediate access to the program. Access to the IRS list of assigned EINs would have\nprovided DHS with an independent source for the employer\xe2\x80\x99s mailing address to confirm\nthe employee\xe2\x80\x99s status with the employer in question.\n\nFurthermore, if the applicants had been required to provide an SSN, the Basic Pilot\nprogram could have verified whether applicants received wages from their parent\ncompany. However, DHS would need access to earnings records, such as SSA\xe2\x80\x99s MEF,\n\n14\n  The MOU sets forth the points of agreement between SSA, DHS, and the employer regarding the\nemployer\'s participation in the Basic Pilot.\n15\n  The Basic Pilot did not require that companies provide their EINs until July 2004, when the program\nbecame a web-based system.\n16\n  DHS may need to seek approval from the IRS to obtain tax-related data, such as EINs and associated\nemployer addresses, since Section 6103 of the Internal Revenue Code (26 U.S.C. \xc2\xa7 6103) limits the\namount of taxpayer information that can be disclosed.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                    5\n\x0cto perform this verification. DHS staff said they would need to work with SSA and/or the\nIRS to obtain such access to earnings records.\n\nMONITORING USE OF THE VERIFICATION SERVICES\nThe SSNVS program had controls to detect anomalies in SSNVS usage, as shown in\nTable 2. For example, SSA had processes that (1) identified users who were\nimproperly searching for valid name and SSN combinations and (2) verified whether the\nemployee names and SSNs submitted for verification related to wages recorded in\nSSA\xe2\x80\x99s MEF. SSA\xe2\x80\x99s monitoring of user activity resulted in four investigations of program\nmisuse, one of which lead to the deactivation of a user\xe2\x80\x99s access to the program. The\nBasic Pilot did not have similar controls in place at the time of our review, but DHS\nplanned to add such monitoring controls at a future date.\n\n                       Table 2: Controls over the Monitoring Process\n                                                                         Control Established?\n                 Description of Controls                                 SSNVS       Basic Pilot\n Identifying multiple submissions of the same employee\n                                                                           Yes              No1\n name and/or SSN\n Verifying submitted employee data against SSA\xe2\x80\x99s\n                                                                           Yes              No\n earnings records\nNote 1: Although the current Basic Pilot program did not have controls to identify multiple submissions\nof names/SSNs, DHS is planning to implement such controls with the potential expansion of the Basic\nPilot program.\n\nSSNVS MONITORING CONTROLS\n\nTo aid in SSNVS monitoring activities, SSA generated Potential Fraud Identification\nreports to highlight incidents where (1) users attempted to verify the same name and/or\nSSN multiple times and (2) submitted employee data did not match earnings information\nin SSA\xe2\x80\x99s records for the EIN in question. SSA also generated various management\ninformation reports to assist SSA staff in their monitoring of employer usage. Sufficient\nmonitoring of data is needed to provide assurance that the relevant controls are\noperating effectively and to identify control weaknesses.\n\nPotential Fraud Identification Reports\n\nAt the time of our review, SSA was using two types of reports to assist in detecting\nimproper searching for valid names/SSNs during the data submission process:\n        \xe2\x80\xa2   Same Name/Different SSN report; and\n        \xe2\x80\xa2   Same SSN/Different Name report.\n\nThe Same Name/Different SSN report identified users who attempted to verify more\nthan 50 combinations for the same name but different SSN, whereas the Same\nSSN/Different Name report identified users who attempted to verify more than\n50 combinations for the same SSN but different name. These reports captured data\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                      6\n\x0cfrom both on-line and batch verification attempts and were produced on a weekly\nbasis.17\n\nSSA developed an SSNVS Failed MEF Check report to highlight all PINs, EINs, and\nSSNs for which the MEF did not contain wages related to the employees submitted for\nverification. The purpose of the report was to identify users who were verifying\nindividuals not employed by the company. The SSNVS Handbook clearly states \xe2\x80\x9cSocial\nSecurity will verify SSNs and names solely to ensure the records of current or former\nemployees are correct for the purpose of completing Internal Revenue Service Form\nW-2.\xe2\x80\x9d18 The Agency plans to generate the SSNVS Failed MEF Check report on an\nannual basis for all users, including third-party users.\n\nManagement Information Reports\n\nSSA also used its management information reports to aid in monitoring employers\xe2\x80\x99 use\nof the SSNVS program. The frequency and content of the reports varied, but they\nincluded:\n\n\xc2\x83    Daily reports on customers who requested access to SSNVS. The information\n     included the company\xe2\x80\x99s EIN and name, and the full name, address and telephone\n     number of the individual requesting access to the program.\n\n\xc2\x83    Weekly reports on the top 50 companies that had the most submissions for\n     verification (called the Top 50 EINs report). This information included the rank order\n     of the company based on the number of submissions, the company\xe2\x80\x99s EIN and name,\n     and the submission and verification requests.\n\n\xc2\x83    Weekly and monthly reports on submission and verification counts.\n\n\xc2\x83    Monthly reports on year-to-date usage trends.\n\nIn addition to the Potential Fraud Identification reports noted above, these management\ninformation reports were used by SSA staff to identify potential anomalies. For\ninstance, SSA staff may monitor the usage trends for unexpected high submission\nvolumes since this could be an indicator of possible fraud or misuse of the program.19\n\n\n\n17\n  SSNVS also has a control feature for on-line verification of names/SSNs. In this case, SSNVS will\ndisplay an on-screen alert to notify the user of the inappropriate use of the program. SSA captures\nmisuse data via its Potential Fraud Identification report.\n\n18\n  The SSNVS Handbook also states \xe2\x80\x9cIt is illegal to use the service to verify SSNs of potential new hires\nor contractors or in the preparation of tax returns.\xe2\x80\x9d\n19\n  In the pilot stage of SSNVS, the program generated alerts when an employer verified more than\n200 percent of the W-2s reported by the company in the preceding year. However, SSA found that this\nalert was not useful since it did not detect misuse but rather allowable variances in how companies were\nverifying their data.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                       7\n\x0cSSNVS USERS INVESTIGATED FOR POTENTIAL FRAUD\n\nSSA staff informed us that since implementation of the SSNVS program they have\ninvestigated four SSNVS users for potential fraud and terminated the access of one of\nthese users. SSA found that although the other three users were inappropriately using\nthe system, their use did not appear to be fraudulent. SSA discovered two of the users\nthrough review of the Top 50 EINs report and detected the other two users after\nreviewing the Potential Fraud Identification reports.\n\nTop 50 EINs Report\n\nIn their review of the Top 50 EINs report, SSA staff recognized that a user was\nrequesting a significant number of verifications through the SSNVS on-line process\neven though the user was submitting verifications for a small company. Upon further\ninvestigation, SSA staff suspected that the user was submitting verification requests\nrelated to applicants for new mortgages. SSA contacted the user on several occasions\nto inquire about usage and received either no response or unsatisfactory answers. As a\nresult, SSA staff deactivated the user\xe2\x80\x99s access20 to the SSNVS program in 2005.21 The\nstaff also notified the Office of the Inspector General, Office of Investigations, but no\nfurther action was necessary due to SSA\xe2\x80\x99s termination of the user\xe2\x80\x99s access.\n\nIn our further review of this company, we found that while the company reported 8 W-2s\nduring Calendar Year (CY) 2005, the user submitted approximately 14,000 names/\nSSNs for verification. We also determined that the user in question was employed by a\ncompany that offered a number of mortgage services on its website, including the\nprocessing of IRS Form 4506, Request for Transcript of Tax Return and SSN\nverification services. The user also attempted to verify more names/SSNs using SSA\xe2\x80\x99s\ntelephone service. SSA questioned the user about the number of verifications and\nterminated the user\xe2\x80\x99s telephone access.22 We found that in late 2005 the user obtained\naccess to the Basic Pilot program. However, as of August 2006, the user had not\nsubmitted any verification requests to the Basic Pilot.\n\n20\n  SSA has a manual process that allows staff to deactivate registered users who inappropriately use the\nSSNVS application. However, there were limitations with the blocking process. The process only allowed\ndeactivation of a specific user\xe2\x80\x99s PIN. Therefore, a company could register another employee to conduct\nname/SSN verification through SSNVS. In addition, when a user was deactivated, the parent company\xe2\x80\x99s\naccess was also revoked from all BSO Internet services. This revocation could cause problems if the\nuser was also responsible for reporting the company\xe2\x80\x99s wages electronically through BSO. As a result,\nSSA plans to initiate a new blocking facility that will allow blocking to be performed at the company (EIN),\nindividual employee (SSN), or BSO PIN-holder levels (EIN and SSN). The software enhancement is\nexpected to be implemented by December 2006.\n\n21\n   SSA is finalizing a new verification service, the Consent Based Social Security Number Verification\n(CBSV), which will give businesses with a need to verify SSNs (banks, insurance companies, etc.) a way\nto purchase SSN verifications from SSA. Businesses will need to register and pay a fee. Submissions\nwill be made via the CBSV Internet application for number holders who have given valid consent. It is\npossible that the deactivated user would qualify to use this service.\n22\n  SSA maintains a \xe2\x80\x9cDo Not Verify\xe2\x80\x9d list alerting the Agency\xe2\x80\x99s Employer Customer Service that they should\nnot verify information for the named employers.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                      8\n\x0cSSA staff also found through review of its Top 50 EINs report another user who was\nsubmitting a significant number of employee names/SSNs for verification, though the\ncompany\xe2\x80\x99s reported payroll did not support such a large volume of submissions. SSA\nstaff contacted the user and learned that the user owned a construction company and\nwas using SSNVS to verify the names and SSNs of subcontractors. SSA staff informed\nthe user that this was an inappropriate use of the program, and the user ceased this\ninappropriate verification activity.\n\nPotential Fraud Identification Reports\n\nSSA staff identified two additional user issues through their review of the Same\nName/Different SSNs report. In the first instance, SSA staff found that one user tried to\nuse SSNVS to determine the correct digits in an SSN shown on an illegible, hand-\nwritten document provided by an employee. In the second instance, SSA staff found\nthat the user submitted a test file of names and SSNs through SSNVS to determine if all\nfictitious SSNs came back as unverified. SSA informed both of these users that such\nuse of the SSNVS program was inappropriate, and the users ceased their inappropriate\nverification activity.\n\nBASIC PILOT MONITORING CONTROLS\n\nIn our discussions with DHS staff, they noted that while the Basic Pilot does not\ncurrently verify applicant data or continuously monitor user activity, the Agency is\nplanning to initiate similar efforts in the future. At the time of our review, DHS had\nassigned one staff person to monitor Basic Pilot activity on a part-time basis. However,\nDHS staff informed us that the potential expansion of the Basic Pilot23 would necessitate\nadditional staff to perform a variety of duties, including monitoring day to day use of the\nprogram as well as verifying applicant information. For example, one task for the new\ncompliance staff could be to follow up on anomalies with program users, including users\nthat submit no queries or submit only the SSNs of noncitizens. Compliance officers\ncould contact employers to ensure they are not misusing the program.24 At a\ncongressional hearing on July 25, 2006, the Associate Director of U.S. Citizenship and\nImmigration Services (USCIS) at DHS noted the Agency\xe2\x80\x99s position on controls over the\nBasic Pilot:\n\n\n23\n  For example, Senate Bill 2611 has proposed the establishment of the Electronic Employment\nVerification System to be used by all employers to verify their employees. See Senate Bill 2611,\nComprehensive Immigration Reform Act of 2006, 109th CONGRESS, 2d Session, S. 2611, \xc2\xa7 301(a).\n24\n   The MOU between the employer, DHS, and SSA states that \xe2\x80\x9cThe Employer agrees not to use the Basic\nPilot procedures for pre-employment screening of job applicants, support for any unlawful employment\npractice, or any other use not authorized by this MOU. The Employer will not verify selectively; it agrees\nto use the Basic Pilot procedures for all new hires as long as this MOU is in effect. The Employer agrees\nnot to use Basic Pilot procedures for reverification, or for employees hired before the date this MOU is in\neffect. The Employer understands that should the Employer use the Basic Pilot procedures for any\npurpose other than as authorized by this MOU, the Employer may be subject to appropriate legal action\nand the immediate termination of its access to SSA and Department of Homeland Security information\npursuant to this MOU.\xe2\x80\x9d\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                     9\n\x0c        The current Basic Pilot is not fraud proof and was not designed to detect identity\n        fraud. In fact, a recent analysis of Basic Pilot systems data found multiple uses\n        of certain I-94 numbers, A-numbers, and SSNs in patterns that could suggest\n        fraud. As currently envisioned, the Employment Verification Program will include\n        robust processes for monitoring and compliance that will help detect and deter\n        the use of fraudulent documents, imposter fraud, and incorrect usage of the\n        system by employers (intentionally and unintentionally). USCIS will forward\n        enforcement leads to [Immigration and Customs Enforcement (ICE)] Worksite\n        Enforcement in accordance with referral procedures developed with ICE. The\n        monitoring unit will scrutinize individual employers\xe2\x80\x99 use of the system and\n        conduct trend analysis to detect potential fraud. Findings that are not likely to\n        lead to enforcement action (e.g., user has not completed training) will be referred\n        to USCIS compliance officers for follow-up. Findings concerning potential fraud\n        (e.g., SSNs being run multiple times in improbable patterns, employers not\n        indicating what action they took after receiving a final nonconfirmation) will be\n        referred to ICE Worksite Enforcement investigators.25\n\nDHS officials noted that they have met with officials from SSA and the IRS to discuss\npotential enhancements to the Basic Pilot as well as avenues for greater cooperation.\nDHS officials also stated that future meetings will discuss some of the monitoring and\napplicant verification activities already being performed under SSNVS.\n\n\n\n\n25\n  Is the Federal Government Doing all it Can to Stem the Tide of Illegal Immigration?, Statement of Janis\nSposato, Associate Director, USCIS, DHS, before the House Subcommittee on Regulation Affairs,\nCommittee on Government Reform, July 25, 2006.\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                   10\n\x0c                                                                       Conclusion\nWe found the SSNVS program had application and monitoring controls in place to\nprotect the program, safeguard data, and prevent unauthorized access. Although our\nreview of the Basic Pilot program was limited, we did not find the same level of access\nor monitoring controls in place at the time of our review. For example, key identifiers\nsuch the applicant\xe2\x80\x99s SSN and DoB were not captured as part of the registration process\nso the applicant\xe2\x80\x99s identity could be authenticated. Furthermore, the Basic Pilot program\nwas not validating the information it obtained from applicants, such as the EIN. Due to\nthe lack of access and monitoring controls over the Basic Pilot, the program would not\nbe able to detect someone who used an assumed name and fabricated EIN from\ngaining access to sensitive data. We believe continued coordination between DHS,\nSSA, and IRS would lead to more effective controls to minimize the potential misuse of\nthe Basic Pilot.\n\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                  11\n\x0c                                           Appendices\nAPPENDIX A \xe2\x80\x93 Acronyms\nAPPENDIX B \xe2\x80\x93 Scope and Methodology\nAPPENDIX C \xe2\x80\x93 Social Security Number Verification Service\nAPPENDIX D \xe2\x80\x93 Basic Pilot Program\n\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)\n\x0c                                                                       Appendix A\nAcronyms\nBSO              Business Service Online\nCBSV             Consent Based Social Security Number Verification\nCY               Calendar Year\nDHS              Department of Homeland Security\nDoB              Date of Birth\nEIF              Employer Identification File\nEIN              Employer Identification Number\nICE              Immigration and Customs Enforcement\nIRS              Internal Revenue Service\nMEF              Master Earnings File\nMOU              Memorandum of Understanding\nOIG              Office of the Inspector General\nPIN              Personal Identification Number\nSSA              Social Security Administration\nSSN              Social Security Number\nSSNVS            Social Security Number Verification Service\nUSCIS            U.S. Citizenship and Immigration Service\nU.S.C.           United States Code\n\n\nForms\n\nForm 1040        U.S. Individual Income Tax Return\nForm I-9         Employment Eligibility Verification Form\nForm I-94        Arrival/Departure Record\nForm SS-5        Application for a Social Security Number\nForm W-2         Wage and Tax Statement\n\xe2\x80\x9cA\xe2\x80\x9d Number       Alien Registration Number\nI-94 Number      Arrival/Departure Number\nForm I-551       Alien Registration Receipt Card\nForms I-766      Employment Authorization Document\nand I-688B\nForm 4506        Request for Transcript of Tax Return\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)\n\x0c                                                                         Appendix B\nScope and Methodology\nTo accomplish our objective, we:\n\n\xe2\x80\xa2   Reviewed pertinent sections of the Social Security Administration\xe2\x80\x99s (SSA) policies\n    and procedures as well as other relevant Federal laws and regulations.\n\n\xe2\x80\xa2   Reviewed Office of the Inspector General, Government Accountability Office, and\n    Department of Homeland Security (DHS) reports, and other relevant documents.\n\n\xe2\x80\xa2   For SSA\xe2\x80\x99s Social Security Number Verification Service (SSNVS) and the Basic Pilot\n    program, we:\n\n    9 obtained a current list of registered users;\n    9 obtained user feedback data;\n    9 obtained sample submission data;\n    9 identified the number of registered employers using the service in Calendar\n      Years (CY) 2004-2005; and\n    9 identified the number of verifications submitted in CYs 2004-2005.\n\n\xe2\x80\xa2   Discussed the following with SSA and DHS staff:\n\n    9 controls in place under SSNVS and the Basic Pilot to ensure employers are\n      taking appropriate actions related to feedback;\n    9 controls in place under SSNVS and the Basic Pilot to ensure employers are not\n      misusing programs;\n    9 each Agency\xe2\x80\x99s experience to date monitoring programs; and\n    9 whether any employers had been terminated from SSNVS or the Basic Pilot.\n\n\xe2\x80\xa2   Established accounts with SSNVS and the Basic Pilot to (1) gain an understanding\n    of the registration process and (2) verify sample data.\n\nWe did not perform a full review of internal controls and data reliability due to the limited\ntimeframe of our review. The entities audited were the Office of Earnings, Enumeration\nand Administrative Systems under the Deputy Commissioner for Systems, the Office of\nCentral Operations under the Deputy Commissioner for Operations, and the Employer\nWage Reporting and Relations Staff under the Deputy Commissioner of Budget,\nFinance, and Management. We conducted the audit between April and August 2006 in\nPhiladelphia, Pennsylvania. We conducted our audit in accordance with generally\naccepted government auditing standards.\n\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)\n\x0c                                                                                     Appendix C\nSocial Security Number Verification Service\nThe Social Security Number Verification Services (SSNVS) is a free on-line program\nthat is available to employers and third-party submitters to verify employees\xe2\x80\x99 names and\nSocial Security numbers (SSN). The purpose of SSNVS is to ensure employees\xe2\x80\x99\nnames and SSNs match the Social Security Administration\xe2\x80\x99s (SSA) records prior to the\nsubmission of their wage reports to SSA.1 Employers and third-parties must first\nregister on-line at SSA\xe2\x80\x99s Business Services Online (BSO) website to use this service.\nFollowing registration, SSA will mail an activation code,2 which is a code needed to gain\naccess to SSNVS, directly to the company\xe2\x80\x99s address shown in SSA\xe2\x80\x99s Employer\nIdentification File (EIF).3 Once the registered users activate SSNVS using their\nPersonal Identification Number (PIN)4 and the activation code, they can start submitting\nverifications. Registered users can:\n      \xe2\x80\xa2   Submit up to 10 employee names and SSNs (per screen) via the on-line SSNVS\n          and receive immediate results; and\n      \xe2\x80\xa2   Upload files containing up to 250,000 employee names and SSNs and usually\n          receive verification results the next government business day. This bulk\n          procedure allows employers to verify an entire payroll database or verify at one\n          time the names and SSNs of a large number of newly hired workers.\n\nSSA will return a verification code to the employer for each employee whose information\ndoes not match SSA\xe2\x80\x99s record. In addition to the verification code, SSA provides a death\nindicator if the employee\xe2\x80\x99s Numident5 record includes a date of death. Table C-1\nprovides descriptions for the SSNVS verification codes.\n\n\n\n\n1\n    Prior to June 2, 2005, SSNVS was a pilot that was restricted to a limited number of employers.\n2\n The activation code is an alphanumeric code sent by SSA to the employer or registered PIN holder (if\nself-employed) when access to certain services is requested. This code must be entered on the Activate\nAccess to BSO Service web page to enable the user to access the requested service.\n3\n The EIF is an Internal Revenue Service file that contains the Employer Identification Number (EIN) of a\nbusiness and the employer name and address associated with each EIN.\n4\n The PIN is a unique value issued by SSA to the applicant at registration, which must be entered to gain\naccess to SSNVS.\n5\n The Numident is a record of identifying information (such as name, date of birth, date of death, mother\xe2\x80\x99s\nmaiden name, etc.) provided by the applicant on his or her Application for a Social Security Number\n(Form SS-5) for an original SSN and subsequent applications for replacement SSN cards. Each record is\nhoused in the Numident Master File in SSN order.\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                 C-1\n\x0c               Table C-1: SSNVS Verification Codes Provided to Users\n   SSNVS Code                               Description of Code\n          1         SSN not in file (never issued to anyone)\n          2         Name and date of birth match; gender code does not match\n          3         Name and gender code match; date of birth does not match\n          4         Name matches; date of birth and gender code do not match\n          5         Name does not match; date of birth and gender code not checked\n          Y         Death indicator\n\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)          C-2\n\x0c                                                                                     Appendix D\nBasic Pilot Program\nThe Basic Pilot is an ongoing joint initiative between the Social Security Administration\n(SSA) and the Department of Homeland Security (DHS).1 The purpose of the Basic\nPilot is to assist employers in verifying the employment eligibility of newly-hired\nemployees. The President signed The Basic Pilot Program Extension and Expansion\nAct of 2003 (Public Law Number 108-156) into law on December 3, 2003. This law\nextended the operation of the Basic Pilot for an additional 5 years (to a total of 11 years)\nand expanded the operation to all 50 States not later than December 1, 2004.\n\nAs discussed with SSA and DHS staff, the Basic Pilot involves using the information in\nGovernment databases (SSA databases and, if needed, DHS databases) to determine\nthe employment eligibility of new hires. The Social Security number (SSN) and Alien\nRegistration Number (\xe2\x80\x9cA\xe2\x80\x9d Number)2 or I-94 Number (Admission Number)3 are used for\nthese checks. The employer must complete the DHS-issued Employment Eligibility\nVerification Form (Form I-9) for each employee and then enter elements of this data into\nthe Basic Pilot within 3 days of hiring, including the employee\xe2\x80\x99s SSN, name, date of birth\n(DoB), and whether the new-hire indicated he or she was a United States (U.S.) citizen\nand, if not, the \xe2\x80\x9cA\xe2\x80\x9d Number or I-94 Number.\n\nThe system first checks the information entered against SSA\xe2\x80\x99s database to verify the\nname, SSN, and DoB of newly-hired employees, regardless of citizenship. When the\nNumident shows the U.S. as the place of birth for the newly-hired employee or a code\nindicating the number holder is a U.S. citizen and the new hire indicated that he/she is a\nU.S. citizen, the Basic Pilot automated system confirms employment eligibility. If the\nBasic Pilot system cannot confirm employment eligibility based on the information in\nSSA\xe2\x80\x99s database or an \xe2\x80\x9cA\xe2\x80\x9d Number or I-94 Number was entered, the Basic Pilot system\nchecks the data against DHS\xe2\x80\x99 database.\n\nThe employer will receive notification of "SSA tentative non-confirmation" of\nemployment eligibility when the SSN, name, or DoB does not match the information in\nSSA\xe2\x80\x99s database or if a death indicator is present. Also, employers will receive an "SSA\ntentative non-confirmation" if the new-hire indicated he or she was a U.S. citizen and\n1\n  Section 401 of The Illegal Immigration Reform and Immigrant Responsibility Act of 1996\n(8 U.S.C. \xc2\xa7 1324a), Pub. Law No. 104-208.\n\n2\n  The \xe2\x80\x9cA\xe2\x80\x9d number is the 9-digit number following \xe2\x80\x9cA\xe2\x80\x9d which is shown on the \xe2\x80\x9cgreen card\xe2\x80\x9d or Permanent\nResident Card (formerly the I-551 Alien Registration Receipt Card), the Employment Authorization\nDocument (I-766 and I-688B), and on certain other immigration documents and notices. For newly\nadmitted immigrants, the \xe2\x80\x9cA\xe2\x80\x9d number is shown on the machine readable immigrant visa affixed to the\nforeign passport.\n3\n The I-94 Number is the 11-digit number located on the Arrival-Departure Record (Form I-94). The\nForm I-94 shows the date the individual arrived in the United States, the \xe2\x80\x9cAdmitted Until\xe2\x80\x9d date, and the\ndate when his or her authorized period of stay expires.\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)                                D-1\n\x0cSSA\xe2\x80\x99s records did not show that the person was a U.S. citizen. The employer will\nreceive notification of "DHS tentative nonconfirmation" of employment eligibility when\nDHS\xe2\x80\x99 database does not show the new-hire as authorized for employment. In these\ncases, the employer asks the employee whether he or she wishes to contest the\ntentative non-confirmation. If contested, the employee must contact SSA or DHS within\neight Government working days of the notification. After the employee contacts SSA or\nDHS to correct the record, the employer resubmits the query through the Basic Pilot\nsystem. If the system does not confirm employment eligibility after the employer\nresubmits the query, the employer may terminate the new-hire.\n\n\n\n\nMonitoring the Use of Employee Verification Programs (A-03-06-36122)            D-2\n\x0c                          DISTRIBUTION SCHEDULE\n\nCommissioner of Social Security\nOffice of Management and Budget, Income Maintenance Branch\nChairman and Ranking Member, Committee on Ways and Means\nChief of Staff, Committee on Ways and Means\nChairman and Ranking Minority Member, Subcommittee on Social Security\nMajority and Minority Staff Director, Subcommittee on Social Security\nChairman and Ranking Minority Member, Subcommittee on Human Resources\nChairman and Ranking Minority Member, Committee on Budget, House of\nRepresentatives\nChairman and Ranking Minority Member, Committee on Government Reform and\nOversight\nChairman and Ranking Minority Member, Committee on Governmental Affairs\nChairman and Ranking Minority Member, Committee on Appropriations, House of\nRepresentatives\nChairman and Ranking Minority, Subcommittee on Labor, Health and Human Services,\nEducation and Related Agencies, Committee on Appropriations,\n House of Representatives\nChairman and Ranking Minority Member, Committee on Appropriations, U.S. Senate\nChairman and Ranking Minority Member, Subcommittee on Labor, Health and Human\nServices, Education and Related Agencies, Committee on Appropriations, U.S. Senate\nChairman and Ranking Minority Member, Committee on Finance\nChairman and Ranking Minority Member, Subcommittee on Social Security and Family\nPolicy\nChairman and Ranking Minority Member, Senate Special Committee on Aging\nSocial Security Advisory Board\n\x0c               Overview of the Office of the Inspector General\nThe Office of the Inspector General (OIG) is comprised of our Office of Investigations (OI),\nOffice of Audit (OA), Office of the Chief Counsel to the Inspector General (OCCIG), and Office\nof Resource Management (ORM). To ensure compliance with policies and procedures, internal\ncontrols, and professional standards, we also have a comprehensive Professional Responsibility\nand Quality Assurance program.\n                                        Office of Audit\nOA conducts and/or supervises financial and performance audits of the Social Security\nAdministration\xe2\x80\x99s (SSA) programs and operations and makes recommendations to ensure\nprogram objectives are achieved effectively and efficiently. Financial audits assess whether\nSSA\xe2\x80\x99s financial statements fairly present SSA\xe2\x80\x99s financial position, results of operations, and cash\nflow. Performance audits review the economy, efficiency, and effectiveness of SSA\xe2\x80\x99s programs\nand operations. OA also conducts short-term management and program evaluations and projects\non issues of concern to SSA, Congress, and the general public.\n\n\n                                    Office of Investigations\nOI conducts and coordinates investigative activity related to fraud, waste, abuse, and\nmismanagement in SSA programs and operations. This includes wrongdoing by applicants,\nbeneficiaries, contractors, third parties, or SSA employees performing their official duties. This\noffice serves as OIG liaison to the Department of Justice on all matters relating to the\ninvestigations of SSA programs and personnel. OI also conducts joint investigations with other\nFederal, State, and local law enforcement agencies.\n\n\n                   Office of the Chief Counsel to the Inspector General\nOCCIG provides independent legal advice and counsel to the IG on various matters, including\nstatutes, regulations, legislation, and policy directives. OCCIG also advises the IG on\ninvestigative procedures and techniques, as well as on legal implications and conclusions to be\ndrawn from audit and investigative material. Finally, OCCIG administers the Civil Monetary\nPenalty program.\n                              Office of Resource Management\nORM supports OIG by providing information resource management and systems security. ORM\nalso coordinates OIG\xe2\x80\x99s budget, procurement, telecommunications, facilities, and human\nresources. In addition, ORM is the focal point for OIG\xe2\x80\x99s strategic planning function and the\ndevelopment and implementation of performance measures required by the Government\nPerformance and Results Act of 1993.\n\x0c'